Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
File: QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft (raw, json)
Hash identifier: ug1ayAHE0YIBaTjeSPH1P4jWlJ5ByxhZVbW6Go7ErT0=
Subject key identifier: 43:FA:C0:E7:DD:ED:AE:02:A2:23:0F:50:58:F5:D0:CA:59:8D:88:19
Authority key identifier: 43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
Certificate issuer: /CN=431c57e1921d31a34aebd12e507a136fe04598c6
Certificate serial: 019D992B3D4958639F9E799527A0B36355F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
Manifest number: 067E
Signing time: Fri 17 Apr 2026 02:00:40 +0000
Manifest this update: Fri 17 Apr 2026 02:00:40 +0000
Manifest next update: Sat 18 Apr 2026 02:00:40 +0000
Files and hashes: 1: QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl (hash: fWDNEQYbSta0yYR4/W/EjtIh6XyFGAHvAoK9+a8vbls=)
2: mIEKfqcwzKGnUqM9s4OdPs7YrbA.roa (hash: buVxIPz10EIVfwpYwh+P1ZYqWF3K+n7bUAR0sR0jGqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:3d:49:58:63:9f:9e:79:95:27:a0:b3:63:55:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=431c57e1921d31a34aebd12e507a136fe04598c6
Validity
Not Before: Apr 17 02:00:40 2026 GMT
Not After : Apr 18 02:00:40 2026 GMT
Subject: CN=43fac0e7ddedae02a2230f5058f5d0ca598d8819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:6f:5e:c2:cf:19:4a:48:c2:71:ea:0e:cc:
bd:6d:af:63:71:2a:d3:c8:d0:8a:e4:43:da:3a:68:
d3:00:8a:1d:72:24:02:92:71:a9:12:b6:9d:ee:5c:
b5:ab:b2:74:85:37:81:f1:32:b7:dc:d2:4f:4f:37:
44:7e:ef:5c:32:c7:3f:56:b9:29:f1:ed:7c:59:24:
b9:da:2c:83:6d:97:7e:f2:f7:44:f9:e5:b8:4d:86:
2d:30:98:2c:b1:c2:31:4f:18:81:57:eb:c7:c8:61:
32:5f:f5:31:88:70:74:c4:12:6e:cd:a0:00:2d:18:
2a:8e:3b:ef:70:2d:f2:6f:99:0b:d9:99:c7:6b:b2:
b5:57:1e:11:c0:e9:9a:fa:3d:0a:87:44:04:3b:c9:
b1:63:32:1e:1c:60:f4:63:dd:cd:51:1e:e5:4e:af:
85:91:c8:f3:aa:42:39:e2:85:d4:db:98:ec:0d:be:
05:2c:a6:4d:37:3b:fb:57:65:54:3d:5f:20:27:3a:
6d:fb:bb:ad:80:83:a4:98:7a:6c:aa:f9:b2:8d:8a:
dd:05:3f:ce:35:ef:05:51:75:1e:cf:34:c4:7a:9a:
7a:5b:c0:93:8f:b0:94:a0:c2:b5:9b:e7:6a:88:03:
35:21:bd:3e:89:28:6c:5a:f6:87:ef:a6:50:c2:00:
c5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FA:C0:E7:DD:ED:AE:02:A2:23:0F:50:58:F5:D0:CA:59:8D:88:19
X509v3 Authority Key Identifier:
keyid:43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:0b:b1:6c:5d:d7:31:6a:2b:86:86:88:08:b1:7b:20:f9:49:
7e:64:5b:07:04:80:40:90:e0:3a:1b:d5:6a:6c:59:91:27:ba:
88:de:5a:72:3d:e1:7c:7d:ef:53:9b:07:9b:b7:a7:af:e3:43:
d8:8d:76:f1:46:7a:fa:1e:23:10:8c:2a:3a:b2:85:b2:cb:a6:
e4:7e:66:9d:a5:49:b0:eb:01:e1:cd:f7:1d:67:fe:f1:28:f4:
0e:53:13:59:af:be:42:f3:e0:a6:e0:8a:3f:cf:f6:02:15:53:
73:2d:e4:3e:a2:82:6b:c0:f7:65:d5:cc:50:a3:56:d2:99:d2:
b6:57:6d:b4:0b:73:c5:8f:b3:60:e3:7b:38:ad:57:0c:78:5a:
00:1f:5b:95:be:6f:68:22:99:8c:6f:fe:71:c0:ca:4b:56:93:
9f:2d:84:ae:26:1f:66:3a:98:1c:2f:38:0d:7f:46:a6:73:1a:
df:a7:3a:13:d3:3f:41:a7:01:6d:49:35:c8:8c:0e:a4:9c:60:
de:f3:3f:4f:e0:16:53:43:49:c9:91:da:c3:0b:aa:22:47:ce:
96:2a:84:8e:98:ae:d6:0c:6e:13:6b:3f:2d:dd:4d:56:31:94:
2b:8f:d6:89:53:d5:0d:87:d5:3c:0f:69:e4:bf:bf:a6:e8:a9:
0b:07:90:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:48:41 2026 by rpki-client